HBase REST Gateway and HBase Thrift Gateway Secured By Default to use SSL

Starting in MEP 6.0.0, HBase REST and HBase Thrift use SSL by default on secured clusters.

  1. On a secure cluster, by default, HBase REST and HBase Thrift read the ssl-client.xml file and configures SSL using this file.
  2. If you want to use a custom SSL configuration, add the following properties to the hbase-site.xml file:

    Enabling HBase REST encryption

    <property>
      <name>hbase.rest.ssl.enabled</name>
      <value>true</value>
    </property>
    <property>
      <name>hbase.rest.ssl.keystore.store</name>
      <value><path-to-ssl_keystore></value>
    </property>
    <property>
      <name>hbase.rest.ssl.keystore.password</name>
      <value><password></value>
    </property>
    <property>
      <name>hbase.rest.ssl.keystore.keypassword</name>
      <value><password></value>
    </property>

    Enabling HBase Thrift encryption

    <property>
      <name>hbase.thrift.ssl.enabled</name>
      <value>true</value>
    </property>
    <property>
      <name>hbase.thrift.ssl.keystore.store</name>
      <value><path-to-ssl_keystore></value>
    </property>
    <property>
      <name>hbase.thrift.ssl.keystore.password</name>
      <value><password></value>
    </property>
    <property>
      <name>hbase.thrift.ssl.keystore.keypassword</name>
      <value><password></value>
    </property>